Methods and Systems for Managing Access to Implantable Medical Devices

1. An external device for wireless communication with an implantable medical device, the external device comprising: a memory comprising first authentication credentials stored thereon; and a processor coupled to the memory and configured to perform actions comprising: transmitting the first authentication credentials directly to the implantable medical device for the implantable medical device to authorize access to the implantable medical device by the external device, wherein the first authentication credentials comprise a first certificate issued to the external device by a certificate authority, wherein the first certificate identifies the external device; receiving a request to facilitate authorization of a second device by the implantable medical device and receiving second authentication credentials from the second device, wherein the second authentication credentials comprise a second certificate issued to the second device by a certificate authority, wherein the second certificate identifies the second device; determining authentication or authorization of the second device using the second authentication credentials; and after authorization of the external device by the implantable medical device and determining authentication or authorization of the second device, transmitting a token or third authorization credentials to at least one of the implantable medical device or the second device directing the implantable medical device to authorize direct access to the implantable medical device by the second device so that both the external device and the second device have authorized direct access to the implantable medical device.

2. The external device of claim 1, wherein the memory has further stored thereon instructions for a first application configured to interact with implantable medical devices, wherein the first certificate comprises explicit identification of at least one interaction capability of the first application with respect to the implantable medical device, wherein each of the at least one interaction capability identifies a specific interaction with the implantable medical device, wherein at least one of the at least one interaction capability is selected from i) selecting from existing stimulation programs, ii) modifying programming settings of existing stimulation programs, or iii) creating stimulation programs; wherein the actions further comprise: executing the first application using the instructions; and transmitting the first authentication credentials to the implantable medical device for the implantable medical device to authorize access to the implantable medical device by the first application limiting interaction between the first application and the implantable medical device to the at least one interaction capability explicitly identified in the first certificate.

3. The external device of claim 2, wherein the memory further has stored thereon instructions for a second application configured to interact with implantable medical devices and additional authentication credentials specific to the second application.

4. The external device of claim 2, wherein the first authentication credentials comprise identification of at least one specific implantable medical device or at least one specific type of implantable medical device that the first application is configured to interact with.

5. The external device of claim 2, wherein the first certificate comprises an end-entity certificate.

6. The external device of claim 5, wherein the end-entity certificate comprises an identification of the first application in custom metadata or certificate extensions of the end-entity certificate.

7. The external device of claim 2, wherein the at least one interaction capability is at least two interaction capabilities, wherein at least another one of the at least two interaction capabilities is selected from reading data, writing data, or modifying or updating software/firmware.

8. A system, comprising: the external device of claim 2; and the implantable medical device configured for wireless communication with the external device.

9. The system of claim 8, wherein the first authentication credentials comprise identification of the implantable medical device in the first authentication credentials.

10. The system of claim 8, wherein the implantable medical device is configured to limit authorized access to the implantable medical device by the first application to only the at least one interaction capability identified in the first authentication credentials.

11. The external device of claim 1, wherein the token or third authorization credentials are limited to a specified time period.

12. The external device of claim 1 wherein the token or third authorization credentials are limited to a single session.

13. A system, comprising: the external device of claim 1; and the second device comprising a memory having stored thereon instructions for a second application configured to interact with implantable medical devices and the second authentication credentials, and a processor coupled to the memory and configured to perform actions comprising: executing the second application using the instructions; and transmitting the second authentication credentials to the external device.

14. The system of claim 13, wherein the memory of the external device has further stored thereon instructions for a first application configured to interact with implantable medical devices, wherein the first authentication credentials are specific to the first application and identify at least one interaction capability of the first application with respect to the implantable medical device wherein the second authentication credentials identify of at least one interaction capability of the second application with respect to the implantable medical device.

15. The system of claim 14, wherein the token or third authorization credentials identify the at least one interaction capability of the first application.

16. The system of claim 14, wherein the token or third authorization credentials identify the at least one interaction capability of the second application.

17. The system of claim 13, further comprising the implantable medical device configured for wireless communication with the external device and the second device.

18. The system of claim 17, wherein the implantable medical device is configured to limit authorized access to the second device based on identification of at least one interaction capability in the token or third authorization credentials.

19. The system of claim 1, wherein transmitting the token or third authorization credentials comprises transmitting the token or third authorization credentials to the implantable medical device directing the implantable medical device to authorize direct access to the implantable medical device by the second device.

20. A system, comprising: the external device of claim 1; and the implantable medical device configured for wireless communication with the external device.